Cyber Security Monitoring

  • Competitive
  • Singapore
  • Permanent, Full time
  • Morgan McKinley Singapore
  • 16 Dec 18

Cyber Security Monitoring

Responsibilities

  • Responsible for carrying out analysis of Application Monitoring and Response (AMR) high risk controls
  • Working in tandem with the Cyber Security teams to support their initiatives
  • To identify, escalate and debate all risks in line with the framework
  • By analyzing events/metrics and escalation data, identify patterns and trends on high risk controls and proactively suggest, develop and implement enhancements to reduce risk

Requirements
  • Strong Splunk skill set to analyze logs and other security events to find targeted attacks against network based bank assets.
  • Able to identify and interpret weblogs from various webservers.
  • Knowledgeable of current and common exploits from the appropriate web and event logs.
  • Working knowledge of Linux, Windows, and OS X operating systems
  • Comfortable with scripting languages and regular expressions
  • Strong knowledge common network protocols
  • Good knowledge of HTTP protocol
  • Experience doing packet captures and interpreting them (Wireshark for example)
  • Understanding of stateful firewalls and able to interpret firewall rules.
  • Able to interpret SQL, Apache web logs, IIS, Active Directory and other security logs
  • Full understanding of modern web site deployments and technology
  • Familiarity with web application attacks including SQL injection, cross-site scripting, and remote file inclusion
  • Use tools to detect anomalous/malicious data transmissions on the network
  • Use advanced analytics / security tools to detect malware on the network